Unrated severityNVD Advisory· Published Jul 3, 2025· Updated Jul 28, 2025
dm: fix dm_blk_report_zones
CVE-2025-38141
Description
In the Linux kernel, the following vulnerability has been resolved:
dm: fix dm_blk_report_zones
If dm_get_live_table() returned NULL, dm_put_live_table() was never called. Also, it is possible that md->zone_revalidate_map will change while calling this function. Only read it once, so that we are always using the same value. Otherwise we might miss a call to dm_put_live_table().
Finally, while md->zone_revalidate_map is set and a process is calling blk_revalidate_disk_zones() to set up the zone append emulation resources, it is possible that another process, perhaps triggered by blkdev_report_zones_ioctl(), will call dm_blk_report_zones(). If blk_revalidate_disk_zones() fails, these resources can be freed while the other process is still using them, causing a use-after-free error.
blk_revalidate_disk_zones() will only ever be called when initially setting up the zone append emulation resources, such as when setting up a zoned dm-crypt table for the first time. Further table swaps will not set md->zone_revalidate_map or call blk_revalidate_disk_zones(). However it must be called using the new table (referenced by md->zone_revalidate_map) and the new queue limits while the DM device is suspended. dm_blk_report_zones() needs some way to distinguish between a call from blk_revalidate_disk_zones(), which must be allowed to use md->zone_revalidate_map to access this not yet activated table, and all other calls to dm_blk_report_zones(), which should not be allowed while the device is suspended and cannot use md->zone_revalidate_map, since the zone resources might be freed by the process currently calling blk_revalidate_disk_zones().
Solve this by tracking the process that sets md->zone_revalidate_map in dm_revalidate_zones() and only allowing that process to make use of it in dm_blk_report_zones().
Affected products
113- osv-coords111 versionspkg:rpm/almalinux/kernelpkg:rpm/almalinux/kernel-64kpkg:rpm/almalinux/kernel-64k-corepkg:rpm/almalinux/kernel-64k-debugpkg:rpm/almalinux/kernel-64k-debug-corepkg:rpm/almalinux/kernel-64k-debug-develpkg:rpm/almalinux/kernel-64k-debug-devel-matchedpkg:rpm/almalinux/kernel-64k-debug-modulespkg:rpm/almalinux/kernel-64k-debug-modules-corepkg:rpm/almalinux/kernel-64k-debug-modules-extrapkg:rpm/almalinux/kernel-64k-develpkg:rpm/almalinux/kernel-64k-devel-matchedpkg:rpm/almalinux/kernel-64k-modulespkg:rpm/almalinux/kernel-64k-modules-corepkg:rpm/almalinux/kernel-64k-modules-extrapkg:rpm/almalinux/kernel-abi-stablelistspkg:rpm/almalinux/kernel-corepkg:rpm/almalinux/kernel-cross-headerspkg:rpm/almalinux/kernel-debugpkg:rpm/almalinux/kernel-debug-corepkg:rpm/almalinux/kernel-debug-develpkg:rpm/almalinux/kernel-debug-devel-matchedpkg:rpm/almalinux/kernel-debug-modulespkg:rpm/almalinux/kernel-debug-modules-corepkg:rpm/almalinux/kernel-debug-modules-extrapkg:rpm/almalinux/kernel-debug-uki-virtpkg:rpm/almalinux/kernel-develpkg:rpm/almalinux/kernel-devel-matchedpkg:rpm/almalinux/kernel-docpkg:rpm/almalinux/kernel-headerspkg:rpm/almalinux/kernel-modulespkg:rpm/almalinux/kernel-modules-corepkg:rpm/almalinux/kernel-modules-extrapkg:rpm/almalinux/kernel-modules-extra-matchedpkg:rpm/almalinux/kernel-rtpkg:rpm/almalinux/kernel-rt-64kpkg:rpm/almalinux/kernel-rt-64k-corepkg:rpm/almalinux/kernel-rt-64k-debugpkg:rpm/almalinux/kernel-rt-64k-debug-corepkg:rpm/almalinux/kernel-rt-64k-debug-develpkg:rpm/almalinux/kernel-rt-64k-debug-modulespkg:rpm/almalinux/kernel-rt-64k-debug-modules-corepkg:rpm/almalinux/kernel-rt-64k-debug-modules-extrapkg:rpm/almalinux/kernel-rt-64k-develpkg:rpm/almalinux/kernel-rt-64k-modulespkg:rpm/almalinux/kernel-rt-64k-modules-corepkg:rpm/almalinux/kernel-rt-64k-modules-extrapkg:rpm/almalinux/kernel-rt-corepkg:rpm/almalinux/kernel-rt-debugpkg:rpm/almalinux/kernel-rt-debug-corepkg:rpm/almalinux/kernel-rt-debug-develpkg:rpm/almalinux/kernel-rt-debug-modulespkg:rpm/almalinux/kernel-rt-debug-modules-corepkg:rpm/almalinux/kernel-rt-debug-modules-extrapkg:rpm/almalinux/kernel-rt-develpkg:rpm/almalinux/kernel-rt-modulespkg:rpm/almalinux/kernel-rt-modules-corepkg:rpm/almalinux/kernel-rt-modules-extrapkg:rpm/almalinux/kernel-toolspkg:rpm/almalinux/kernel-tools-libspkg:rpm/almalinux/kernel-tools-libs-develpkg:rpm/almalinux/kernel-uki-virtpkg:rpm/almalinux/kernel-uki-virt-addonspkg:rpm/almalinux/kernel-zfcpdumppkg:rpm/almalinux/kernel-zfcpdump-corepkg:rpm/almalinux/kernel-zfcpdump-develpkg:rpm/almalinux/kernel-zfcpdump-devel-matchedpkg:rpm/almalinux/kernel-zfcpdump-modulespkg:rpm/almalinux/kernel-zfcpdump-modules-corepkg:rpm/almalinux/kernel-zfcpdump-modules-extrapkg:rpm/almalinux/libperfpkg:rpm/almalinux/perfpkg:rpm/almalinux/python3-perfpkg:rpm/almalinux/rtlapkg:rpm/almalinux/rvpkg:rpm/opensuse/dtb-aarch64&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-64kb&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-zfcpdump&distro=openSUSE%20Leap%2016.0pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2016.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-obs-qa&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-obs-qa&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
< 5.14.0-611.26.1.el9_7+ 110 more
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 6.12.0-124.43.1.el10_1
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 5.14.0-611.26.1.el9_7
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1.160000.2.4
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1.160000.2.4
- (no CPE)range: < 6.12.0-160000.6.1.160000.2.4
- (no CPE)range: < 6.12.0-160000.6.1.160000.2.4
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
- (no CPE)range: < 6.12.0-160000.6.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3News mentions
0No linked articles in our index yet.